CVE-2008-0984

Miro Player < 1.1 - Remote Code Execution via Malformed MP4 File

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-0984.

AI-analyzed exploit summary This exploit generates a malicious .ssa subtitle file that triggers a local buffer overflow in Kantaris 0.3.4 Media Player. The payload includes a JMP ESP instruction and a bind shell shellcode, which binds to port 4444 upon successful exploitation.

Description

The MP4 demuxer (mp4.c) for VLC media player 0.8.6d and earlier, as used in Miro Player 1.1 and earlier, allows remote attackers to overwrite arbitrary memory and execute arbitrary code via a malformed MP4 file.

Exploits (1)

exploitdb WORKING POC

pythonlocalwindows

https://www.exploit-db.com/exploits/5498

View Code ZIP pw:eip

This exploit generates a malicious .ssa subtitle file that triggers a local buffer overflow in Kantaris 0.3.4 Media Player. The payload includes a JMP ESP instruction and a bind shell shellcode, which binds to port 4444 upon successful exploitation.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Kantaris Media Player 0.3.4

No auth needed

Prerequisites: Victim must open the malicious .ssa file in Kantaris Media Player

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (13)

Core 13

Core References

Patch x_refsource_confirm

http://www.videolan.org/security/sa0802.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1019510

Vendor Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2008/0682

Various Sources x_refsource_misc

http://www.coresecurity.com/?action=item&id=2147

Third Party Advisory vendor-advisory x_refsource_gentoo

http://www.gentoo.org/security/en/glsa/glsa-200803-13.xml

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/29122

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/29284

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2008/dsa-1543

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/29153

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/28007

Mailing List mailing-list x_refsource_fulldisc

http://lists.grok.org.uk/pipermail/full-disclosure/2008-February/060481.html

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/488841/100/0/threaded

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/29766

Scores

EPSS 0.1528

EPSS Percentile 96.3%

Details

CWE

CWE-399

Status published

Products (2)

miro/miro_player < 1.1

videolan/vlc_media_player < 0.8.6d

Published Feb 26, 2008

Tracked Since Feb 18, 2026